Heap-based Buffer Overflow in Citrix Provisioning Services
CVE-2012-4068

Currently unrated

Key Information:

Vendor
Citrix
Vendor
CVE Published:
26 July 2012

Summary

A heap-based buffer overflow vulnerability exists in the SoapServer service of Citrix Provisioning Services versions 5.0 to 6.1. This allows malicious remote attackers to exploit the flaw by sending crafted strings related to date and time data, potentially leading to arbitrary code execution on the affected system.

References

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.